Versions Compared

Version Old Version 7 New Version Current
Changes made by

Gary Leicht

Gary Leicht

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Creating Application Filters

NOTE: If you are creating an application filter to be used with local on-prem resolution, then you must add Allow - Local Resolution as the default action to your security policy. Application filters are available to subscribers

of BloxOne

of Infoblox Threat Defense Advanced. For more information on how to add an action to a security policy, see Adding Policy Rules and Setting Precedence. 

Note

Reporting Incorrect Data: To report incorrect data, submit the Dossier Threat Research Feedback from. For information, see Dossier Threat Research Feedback.

To create an application filter, complete the following:

  1. From the Cloud Services Infoblox Portal, click Policies -> Security Configure > Security > Policies.

  2. On the Security Policies page, click the Filters tab located above the top Action bar.

  3. On the Filters page, click Create Filter on the top Action bar.

  4. From among the options displayed (Create Category Filter or Create App Filter), click Create App Filter.

  5. On the Create Application Filter page, complete the following:

    • Name: Enter a name for the content application filter. Ensure that you use a unique name for each filter. This is a required field.

    • Description: Enter a brief description of the filter. You can enter up to 256 characters.

  6. From the applications list, APPLICATIONS, expand the AVAILABLE list by clicking on the respective arrow next to the application type. Within each application category, sub categories are listed. You can add an entire application category or select among the subcategories to include in your application filtering policy. Application category filter/subcategory filter types include:

Application Categories

Application Subcategories

Business App Suite

163 Cloud
Adobe Creative Cloud
Articulate 360
Autodesk
Azure Cloud Services
BrightSpot
Google Docs Editors
Microsoft 365
Microsoft Office
mParticle
Tableau Software
Yandex.Cloud

Generative AI

AI Companions
AI Companions - Adult
AI Transcription Service
Amazon Bedrock LLMs
Anthropic Claude
Azure AI
Azure Open AI
DeepSeek
Emergent Generative AI Tools
Gemini
GitHub Copilot - Business
GitHub Copilot - Enterprise
GitHub Copilot – Individual
Grammarly
Heroku
Huggingface
LLM Aggregators
Mistral
Open AI
Perplexity
Qwen
Student Helpers

Email

163 Email
Google Gmail
Microsoft Exchange
Microsoft Outlook
YahooMail

Cloud Backup and Storage

1fichier Cloud
4shared
ADrive
Allway Sync
Blomp
Box
DepositFiles
Dropbox
Filestack
Github
Google Drive
Google Photos
HiDrive
HP Cohesity
iCloud
IPFS
Jottacloud
Koofr
Microsoft OneDrive
Microsoft Substrate
MiMedia
pCloud
Sharefile
Sync
Syncwerk
Synology NAS
WEB.DE Online Storage
WeTransfer
Yandex Disk
Zippyshare

Communication

8x8
Google Chat
Google Voice
Microsoft Edge
Microsoft Teams
Mozilla Firefox
RingCentral
Slack

Webex

Content Delivery Network (CDN)

Akamai CDN
Vimeo

Other

AddThis
Google Maps
Medium
Narrative
OpenStreetMap

Platform as a Service (PaaS)

AWS IoT 1-Click

ACM
ACM Private CA
Alexa for Business
Amazon AppFlow
Amazon AppStream 2.0

IAM Access Analyzer
ACM
ACM Private CA
Kinesis Data Streams
Kinesis Video Streams
Alexa for Business
Amplify
Mechanical Turk
Organizations
API Gateway
AWS AppConfig
Application Discovery Service
Amazon AppFlow
CloudWatch Application Insights

Amazon CloudSearch
Amazon Chime
Amazon Cognito Identity
Amazon Cognito Sync
Amazon Comprehend
Amazon Comprehend Medical
Amazon Connect
Amazon Corretto 11
Amazon Data Lifecycle Manager
Amazon EBS
Amazon EC2
Amazon ECR
Amazon ECR Public
Amazon ECS
Amazon EFS
Amazon EKS
Amazon EMR
Amazon Fraud Detector
Amazon FSx
Amazon Inspector
Amazon IVS
Amazon Kendra
Amazon Keyspaces
Amazon Lex
Amazon Managed Grafana
Amazon Managed Service for Prometheus
Amazon MemoryDB for Redis
Amazon MQ
Amazon MSK
Amazon MSK Connect
Amazon MWAA
Amazon Personalize
Amazon Pinpoint
Amazon Polly
Amazon QuickSight
Amazon RDS
Amazon Redshift
Amazon Rekognition
Amazon S3
Amazon SES
Amazon SimpleDB
Amazon SNS
Amazon SQS
Amazon SWF
Amazon Textract
Amazon Transcribe
Amazon Translate
Amazon VPC
Amazon WorkDocs
Amazon WorkLink
Amazon WorkMail
Amplify
API Gateway
Application Auto Scaling
Application Discovery Service
Application Migration Service
App Mesh
App Runner


AWS AppSync
Resource Groups and Tagging
Auto Scaling
Application Auto Scaling
Secrets Manager
Athena
Audit Manager


Athena
Attendant Pro
Audit Manager
AutoHotKey
Auto Scaling
AWS IoT 1-Click
AWS IoT 1-Click
AWS IoT Analytics
AWS IoT Core
AWS IoT Device Management
AWS IoT Events
AWS IoT Greengrass V1
AWS IoT Greengrass V2
AWS IoT RoboRunner
AWS IoT SiteWise
AWS IoT Things Graph
AWS IoT TwinMaker
AWS AppConfig
AWS AppSync
AWS Auto Scaling
AWS Batch
AWS Backup
AWS BugBust
AWS Chatbot
AWS Cloud9
AWS CloudHSM
AWS Cloud Map
AWS CodeStar
AWS CodeStar Notifications
AWS Config
AWS Data Exchange
AWS Data Pipeline
AWS Direct Connect
AWS DeepLens
AWS DeepRacer
AWS DMS
AWS Directory Service
AWS FIS
AWS Glue
AWS Ground Station
AWS Health
AWS

Marketplace

Import/Export
AWS

Support

KMS
AWS

Batch
Billing and Cost Management
AWS Backup
Braket
CloudFormation
CloudFront
AWS Chatbot
Amazon Chime
AWS Cloud9
Cloud Control API
Cloud Directory
AWS CloudHSM
AWS Cloud Map
Amazon CloudSearch
CloudShell
CodeArtifact
CodeBuild
CodeCommit
CodeDeploy
CodeGuru Profiler
CodeGuru Reviewer
CodePipeline
AWS CodeStar
AWS CodeStar Notifications
Amazon Cognito Identity
Amazon Cognito Sync
Amazon Comprehend
Amazon Comprehend Medical
Compute Optimizer
Amazon Connect
Amazon Corretto 11
CloudTrail
CloudWatch

Launch Wizard
AWS Management Console
AWS Migration Hub Refactor Spaces
AWS Marketplace
AWS OpsWorks
AWS Outposts
AWS Proton
AWS RAM
AWS RoboMaker
AWS Serverless Application Repository
AWS Service Catalog
AWS Signer
AWS Sign-In
AWS SMS
AWS SSO
AWS STS
AWS Support
AWS Systems Manager
AWS WAF
AWS WAF Classic
AWS Well-Architected Tool
Billing and Cost Management
BitDefender
Boomi
Business App
Braket
CCleaner
Cloud Control API
Cloud Directory
CloudFormation
CloudFront
CloudShell
CloudTrail
CloudWatch
CloudWatch Application Insights
CloudWatch Events
CloudWatch Logs
CloudWatch


CloudWatch Synthetics
DataBrew
AWS Data Exchange
AWS Data Pipeline
DataSync
AWS Direct Connect
DynamoDB
AWS DeepLens
AWS DeepRacer

Synthetics
CodeArtifact
CodeBuild
CodeCommit
CodeDeploy
CodeGuru Profiler
CodeGuru Reviewer
CodePipeline
Compute Optimizer
DataBrew
Datadog
DataSync
Degoo
Detective
Device Farm
DevOps Guru


Amazon Data Lifecycle Manager
AWS DMS
Elastic Disaster Recovery
AWS Directory Service
Amazon EBS


Devolutions Server
Digicert
Duo
DynamoDB
Egnyte
EC2 Image Builder
EC2 Instance Connect


Amazon EC2
Amazon ECR


Amazon ECR Public
Amazon ECS
Amazon EKS

ElastiCache
Elastic Beanstalk

Amazon EFS

Elastic Disaster Recovery
Elastic Inference
Elastic Transcoder
Elastic Load Balancing


Amazon EMR


EventBridge
EventBridge Schemas

Kinesis Data Firehose

Firewall Manager

AWS FIS

Forecast

Amazon Fraud Detector
Amazon FSx
GameLift
S3 Glacier

Foxit Software
GameLift
Global Accelerator

AWS Glue
Amazon Managed Grafana
AWS IoT Greengrass V1
AWS IoT Greengrass V2
AWS Ground Station

Google Play
Google Safe Browsing
Google Tag Manager
Granicus IQM2
GuardDuty
HealthLake
IAM

AWS Import/Export
EC2 Image Builder

IAM Access Analyzer
ibossConnect
Incident Manager

Amazon Inspector
AWS IoT Analytics
AWS IoT Core
AWS IoT Device Management
AWS IoT Events
AWS IoT RoboRunner
AWS IoT SiteWise
AWS IoT Things Graph
AWS IoT TwinMaker
Amazon IVS
Kinesis Data Analytics
Amazon Kendra
Amazon Keyspaces
AWS KMS
Lake Formation
Lambda
AWS Launch Wizard
Amazon Lex

Kaseya VSA
KeePass
Kinesis Data Analytics
Kinesis Data Firehose
Kinesis Data Streams
Kinesis Video Streams
KLCP
Lake Formation
Lambda
License Manager
Lightsail
Lookout for Equipment
Lookout for Metrics
Lookout for Vision


AWS Mainframe Migration


Amazon ML

Macie
Managed Blockchain
Mechanical Turk
MediaConnect
MediaConvert
MediaLive
MediaPackage
MediaStore
MediaTailor

Amazon MemoryDB for Redis
AWS Management Console
Application Migration Service
Migration Hub
AWS Migration Hub Refactor Spaces

Microsoft
Microsoft Certificates
Microsoft Sharepoint
Microsoft Wallet app
Migration Hub
Migration Hub Strategy Recommendations

Amazon MQ

Mimecast

Amazon MSK
Amazon MSK Connect
Amazon MWAA

mPulse
Network Firewall
Network Manager
nextcloud
Nimble Studio
Okta
OpenSearch Service

AWS OpsWorks
AWS Outposts
Amazon Personalize
Amazon Pinpoint
Amazon Polly
Amazon Managed Service for Prometheus
AWS Proton
QLDB
Amazon QuickSight
Route 53
AWS RAM
Amazon RDS
Amazon Redshift
Amazon Rekognition
Resilience Hub
AWS RoboMaker
Amazon S3
SageMaker
Amazon SimpleDB
Security Hub
AWS Serverless Application Repository
AWS SMS
AWS Service Catalog
Service Quotas
Amazon SES
Storage Gateway
Shield Advanced
AWS Signer
AWS Sign-In
Snow Family
Amazon SNS
Amazon SQS
AWS Systems Manager
AWS SSO
Step Functions
AWS STS
Amazon SWF
Amazon Textract
Timestream
Amazon Transcribe
Transfer Family
Amazon Translate
Amazon VPC
AWS WAF Classic
AWS WAF
AWS Well-Architected Tool
Amazon WorkDocs
Amazon WorkLink
Amazon WorkMail
WorkSpaces
X-Ray
Boomi
Degoo
Google Play
Google Tag Manager
Software Development
Business App
Attendant Pro
AutoHotKey
Egnyte
Foxit Software
Granicus IQM2
KLCP
Microsoft
Microsoft Sharepoint
Microsoft Wallet app
mPulse
nextcloud
Okta
Oracle Advanced Support Gateway
RISA
Skype for Business
Smart Adserver Dashboard
Splunk
Taboola Backstage
Trello
Vorex
XMind
Security
BitDefender
CCleaner
Datadog
Devolutions Server
Digicert
Duo
Google Safe Browsing
ibossConnect
Kaseya VSA
KeePass
Microsoft Certificates
Mimecast
OPSWAT Mobile App
Qualys Time Server
Symantec Messaging Gateway

OPSWAT Mobile App
Oracle Advanced Support Gateway
Organizations
QLDB
Qualys Time Server
Resource Groups and Tagging
Route 53
Resilience Hub
RISA
S3 Glacier
SageMaker
Secrets Manager
Security
Security Hub
Service Quotas
Shield Advanced
Skype for Business
Smart Adserver Dashboard
Snow Family
Software Development
Splunk
Step Functions
Storage Gateway
Symantec Messaging Gateway
Taboola Backstage
Timestream
Transfer Family
Trello
Vorex
WorkSpaces
X-Ray
XMind

Software Development

Apache Software Foundation
Archi


Launch Darkly


Oracle Linux

Comprehensive R Archive Network (CRAN)
Launch Darkly
Oracle Linux
RStudio
Visual Studio Code

Business App

Attendant Pro
AutoHotKey
Egnyte
Foxit Software
Granicus IQM2
KLCP
Microsoft
Microsoft Sharepoint
Microsoft Wallet app
mPulse
nextcloud
Okta
Oracle Advanced Support Gateway
RISA
Skype for Business
Smart Adserver Dashboard
Splunk
Taboola Backstage
Trello
Vorex
XMind

Security

BitDefender
CCleaner
Datadog
Devolutions Server
Digicert
Duo
Google Safe Browsing
ibossConnect
Kaseya VSA
KeePass
Microsoft Certificates
Mimecast
OPSWAT Mobile App
Qualys Time Server
Symantec Messaging Gateway

Video Conferencing

Blue Jeans
Solstice
Webex

Information Technology

Bright Sign
Cisco Meraki
Dell
DisplayLink
HP Updates
Microsoft Diagnostic Data
Microsoft Settings
mRemoteNG
ThousandEyes
Ubuntu
VMware
Windows Spotlight
Windows Update

Consumer Services

Amazon Shopping
Bubble Witch
Candy Crush
CDBurnerXP
eBay
Feedly
Freedom Scientific
GIMP
iTunes
Microsoft OneNote
Netflix
Opera Software
PayPal
Plex
Poly
RealNetworks
Screenpresso
speedify
Speedpass
TinyURL
Vitalsource Bookshelf
Weather app
Windows Maps
Xbox Live

Remote Connectivity

code4ward
Splashtop
TeamViewer

Endpoint Protection

ePO
ESET Protect
Falcon
Kaspersky Endpoint Security
Malwarebytes
Microsoft Defender Antivirus

VPNs & Proxies

express_vpn
Freegate
Hidester
HMA VPN
hotspot_shield
mullvad_vpn
proton_vpn
ProxyScrape
pure_vpn
safervpn
VPNFacile
vpn_unlimited
Your Freedom
Zscaler

Social Networking

Facebook
Instagram
Linkedin
Monster
OpenWeb
Pinterest
Spotify
Tencent Cloud
Tencent QQ
TikTok
Twitter
Whatsapp
Yahoo Messenger
Youtube

Search Engines

Bing
Google Cloud Search
Google Search
Yahoo Search
Yandex Search

Vulnerability Scanner

Nessus
Qualys Vulnerability Scan

        

7. From the From the AVAILABLE list select the checkboxes of the specific sub-applications you want to
include in the rule, and then use the arrows to move the selected subcategories from the
AVAILABLE list to the SELECTED list. You can include as many applications and sub-applications as
you want based on your needs.
8. To remove a sub-application from the SELECTED list, click the X located to the right of the sub-
application's name.
9. Click Save & Close to save or Cancel to cancel the configuration. BloxOne Threat Defense Infoblox Cloud adds
the application filter to the list. You can now add the application filter to a security policy or to multiple
policies. For more information, see Configuring Security Policies.

NOTE: You cannot remove an existing application filter if it has been added and assigned an action in any security policies.